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Executive 
summary 


Innovation is essential to your organization's 
success and central to your ability to sustain 
competitive advantage. In our digitally driven world, 
data has become the lifeblood of innovation. 


Data gives organizations better insights 

that lead to unique products, more efficient 
operations, superior customer experience, 

and many other quantifiable benefits. But there's 
arisk inherent to data-driven innovation. Any 
advantage you gain can be quickly compromised 
by cybercriminals. 


Face it: Cybercriminals value innovation as much 
as you. These bad actors are constantly looking 
for new ways to tunnel into your network or 
disrupt your business. 


Mobile and loT: More innovation, 
more threats 


As mobile devices become commonplace in most 
organizations, cybercriminals are exploiting poorly 
secured smartphones, mobile apps, and 
unauthorized wireless networks to gain access to 


Block evolving threats with 
innovative technologies 


e Identity & access management: Authorize 
access policies for applications, devices and 
people 


* Threat analytics: Automate processes 
for identifying and responding to 
abnormal activity 


e Virtualization: Improve flexibility and 
consistency with software-defined security 


e Incident response: Institute a playbook that 
outlines roles and actions to contain 
a breach 


sensitive data. Employees may unwittingly 
download malware-laden mobile apps from 
unauthorized app stores, opening up new attack 
vectors. Nearly a third of mobile devices are at 
medium-to-high risk of exposing enterprise data‘. 


In addition, the growth of the Internet of Things 
(loT) has pushed the scale and sophistication of 
cybercriminal efforts to unprecedented levels. 
Commandeering 100,000 loT devices for a 
Distributed Denial of Service (DDoS) attack is 

no longer theoretical it's the latest indication that 
cybercrime innovation is thriving. 


Best practices 


To reduce risk in this increasingly dynamic 
environment, your approach to cybersecurity must 
continuously evolve above and beyond the 
foundational practices you already have in place. 


Cybersecurity innovation means keeping pace with 
cybercriminals by continually adapting and 
evolving your organizations security controls and 
practices for protecting enterprise data. Whether 
your data resides on an loT device, a smartphone, a 
server behind the corporate firewall or is in transit 
to or from the cloud, innovation is the new 
cybersecurity mandate. 


A proactive approach to cybersecurity involves 
securing all components of the digital ecosystem 
— data, connected devices, applications, networks, 
and the data center — with the help of innovative 
technologies and methods that improve how you 
identify and respond to just not today's threats, 
but tomorrow’s as well (see box). 


Importantly, cybersecurity innovation also 

requires trusted alliances and integration into the 
broad and growing cybersecurity ecosystem. By 
relying on security providers, you can adopt and 
customize products and processes to stay ahead 
of the bad actors. In today's environment, you cant 
fight organized cybergangs and nation states on 
your own. 


Innovation has always been a driving force behind 
business success. At AT&T, we believe cybersecurity 
innovation is essential to sustained success. 
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Digital transformation is delivering o 
for organizations to improve their business in a 
variety of ways. Increased mobility, big data 
analytics, and cloud services, among other 
emerging technologies and trends, are helping 
businesses run more efficiently, make better 


decisions, and improve customer ex 


But these advances create new vuln 
that bad actors are quick to exploit. 





pportunities 


perience. 


erabilities 
Data-driven 


innovation has increased opportunities for 
cybercriminals to steal, expose, alter, and resell 








sensitive data — or even hold it hos! 


tage. 


"We're in transition; says Brian Rexroad, vice 
president of Security Platforms at AT&T. "Ten 
years ago, we were focused on disk encryption 
on laptops. Now we're moving toward web- 
based applications as the primary site for data 
security. 


An organization's sustained success, therefore, 
now hinges on its ability to be nimble in 
protecting and defending against all types of 
cybercriminals, from casual hackers to heavily 
funded nation states. With a security strategy 
that is grounded in innovation, you can develop 
the agility needed to face an always evolving 
threat landscape. 





Unfortunately, not every organization has 
embraced a security strategy defined by 
constant evolution. In a recent survey of IT 

and business professionals, more than half said 
they have had the same model for information 
security management in place for three or 
more years — a lifetime in the rapidly shifting 
threat environment. Asked to grade their 
organization's security practices, just 1196 

gave themselves an A? 


"Were in transition. Ten 
years ago, we were focused 
on disk encryption on 
laptops. Now we're moving 
toward web-based 
applications as the primary 
site for data security.” 


Brian Rexroad 
Vice President 
Security Platforms 
AT&T 


If your organization's security strategy isn't 
making the grade, you're putting yourself 

at considerable risk. It's critical to deploy a 
cybersecurity model that can identify 
traditional and evolving threats and respond 
quickly to head off or help mitigate an attack. 





/N 50% 


of organizations haven't updated 
their security strategy in 3* years 


Source: CIO/Computerworld 


"As the bad actors continue to become more 
creative and advanced in their attack methods, 
we will be doing the same with our identification 
and defenses to mitigate whatever they’re doing,’ 
says Alex Cherones, director of Threat Security 
Solutions at AT&T. "It's a game of cat and mouse” 





Winning the game involves continually evolving 
your cybersecurity strategy and tools to stay in 
front of challenges that did not exist just a few 
years ago. It also requires allies that can help you 
to capture efficiencies and build end-to-end 
protection. The broader cybersecurity 
community is essential for sharing threat 
intelligence and improving the overall value of 
security to your business. 


"You never want to be dependent on one layer 
of security, especially if you're protecting 
sensitive data,” says Todd Waskelis, assistant vice 
president and general manager of Security 
Consulting Services at AT&T. 


This report examines the primary layers of the 
data ecosystem in more detail, to help you 
prepare for emerging threats and agilely 
respond to attacks. 





There's no shortage of data fueling modern 
business. The AT&T network carries over 135 
petabytes of data daily. Global internet traffic 
surpassed 1 zettabyte — that’s 1 trillion 
gigabytes — for the first time in 2016. Business 
traffic is expected to grow 1896 annually 
through 2020*. Clearly, data is growing and 
evolving, creating ever-more opportunities for 
cybercriminals. 


Enterprises once relied on static security 
perimeters to protect the valuable information 
that they stored in onsite data centers. No 
longer. With the blending of personal and 
business uses of devices and applications, data 
is scattered across mobile laptops, tablets, 
smartphones, and increasingly, loT devices. 


Data is on the move with your employees when 
they visit nearby coffee shops or travel globally, 
creating new and unexpected avenues for attack. 


Classifying your organizations various types of 
data, therefore, is one of the most fundamental 
decisions impacting the security of your data. 
Only after determining its level of importance in 
the organization can you know how the data 
should be secured. 





See but don't grab. The growth of mobile 
workers notwithstanding, some data is simply 
so valuable or sensitive that it should never leave 
the heavily protected servers within a data 
center's walls. Organizations can implement 
technologies that allow users — be they internal 





employees working on PCs or mobile workers 
outside the firewall — to view the data but not 
actually transfer it to their devices memory. 


Control who, what, and where. Whether they 
allow data to just be viewed or permit it to be 
distributed, organizations must control who and 
what can see or download their data. 


In the past, identity and access management 
tools focused on determining the roles and 
clearances of individual employees, alliances, or 
customers. Today, authentication and 
authorization must also be applied to devices 
and applications, not just people. 





Encrypt to protect. Data encryption has long 
been a sore point for users because the 
encryption/decryption process was slow and 
frustrating. Advanced encryption algorithms, the 
general increase in processing power, and new 
encryption services are now making it easier to 
encrypt data by default, rather than by exception. 


“It’s essential that companies make things 
effortless for their employees; says Andy 
Daudelin, vice president for Cloud and Cloud 
Networking at AT&T. "If security is cumbersome, 
or performance is horrible, users will go around it^ 


Look for services that can transparently encrypt 
individual email and document files as they travel 
from a device to storage in the data center or in 
the cloud. Some services are now embedding 
master encryption to speed the encryption 
process and prevent online attackers from seeing 
the keys. These services can be deployed onsite 
within customer premise equipment or accessed 
as a cloud-based service. 


Applications 


Well-known threats such as phishing and 
virus-laden email scams continue to flood 
organizations. Email remains an attractive target 
for hackers looking to breach corporate 
networks. In an average month, approximately 
three-quarters of the more than 21 billion emails 
transmitted to organizations across the AT&T 
network are flagged as suspicious and blocked 
from reaching their destination. That equates to 
more than 400 million spam messages detected 
by AT&T on its network every day. 


Through social engineering schemes, 
cybercriminals use email attacks to steal 
employees' credentials, such as passwords 

and user names. Once they have tricked 
unsuspecting employees into providing the 
credentials needed to legitimately enter, the bad 
actors can take their time stealing your 
organization's most precious assets. 


One well-crafted malicious email can have 
staggering results. In December 2016, a Ukrainian 
power grid fell victim to a cyberattack — the 
second in two years — that left more than 
230,000 people living near Kiev without power 
for an hour. Russian hackers were able to access 
the network through phishing emails sent to 
government employees. Experts have stated 
that the cybercriminals seem to be testing their 
evolving capabilities. 


15% 


of emails received bythe 
AT&T network are blocked 
each month 
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Stolen data can be used immediately by 
attackers or resold on the dark web, months or 
even years after the original breach. These 
types of breaches disrupt more than the lives of 
individuals whose information was stolen. 
Cybercriminals use that data to access more 
sensitive information or tunnel into the 
businesses, government agencies, or military 
institutions where the individuals work. 


Persistent mobile threats 


Mobile apps are another emerging concern, 
underscored in late 2016 by the breach of more 
than 1 million Google accounts. By downloading 
infected apps from unauthorized app stores, 
Android users introduced the Gooligan malware 
that gained access to Gmail and Google Play™, 
among other services. At least 86 seemingly 
legitimate apps contained the malware. Security 
experts described the Gooligan attack as 
Google's worst account breach ever”. 


Unfortunately, employees find it hard to resist 
downloading apps from unapproved sources. 
Approximately one-third of all mobile devices 
are considered to be at medium-to-high risk of 
exposing sensitive corporate data®. 


Other common applications can also expose an 
organization to risk. For example, the average 
company uses 49 cloud-based file-sharing 
services, accounting for 3996 of all company 
data uploaded to the cloud. More than one in 
five documents uploaded to file-sharing 
services contain some sensitive data. But while 
8296 of cloud providers encrypt data when it's 
moving between a user and the cloud service, 
fewer than 1096 encrypt data when it's at rest in 
the cloud — making it vulnerable to attackers’. 
The threat to data is further complicated by IT's 
unawareness of all file-sharing services used 
throughout the organization. 


Secure-by-design. Whether applications are 
purchased off-the-shelf, developed in-house, or 
downloaded from the cloud, data security must 


Q 


Mobile attacks advance 


Many IT teams have difficulty pinpointing their mobility 
risk. Without this essential visibility, security personnel 
have no way to identify, quantify, or mitigate all risks to 
the enterprise. 


One-third of devices have medium-to-high 
risk of data exposure 


Medium-to- 
high risk 
3396 


Minimal risk 
3/96 





Low risk 
3096 


Risks from enterprise and employees' 
personal mobile phones 


Employee behavior is the main reason mobile phones 
pose a riskto an organization's data. Devices that aren't 
secured with passcodes can be easily accessed by 
anyone at anytime. Malware can infect an organization's 
network through apps downloaded from unauthorized 
app stores. 


Number of devices without a passcode 


Number of Android devices that allow 
third-party app installation 


= IE 


B Enterprise Bib Personal 


Source: Skycure Mobile Threat Intelligence, Q3 2015 








be built in at the start — not bolted on as an 


afterthought. This secure-by-design 
requirement has become increasingly vital given 
the massive quantities of data that modern-day 
applications generate and use. 


Know the good guys. The advent of easily 
downloadable mobile apps has added 
complexity — and new vulnerabilities — to the 
application layer of security. Major app stores 
generally do a good job of weeding out 
malicious or poorly secured apps. However, even 
the reputable stores have sometimes been 
fooled by rogue developers who create 
malicious development environments designed 
to hide malware in apps that appear, at least 
superficially, to be safe. 

















Given this threat, organizations should create 
whitelists of approved mobile apps, and should 
closely monitor the app profiles of corporate- 
owned as well as bring-your-own devices 
(BYODs). That's no easy task. A recent analysis of 
global cloud usage data found that the average 
organization uses an astonishing 1,427 cloud 
services — each represented by an app on at 
least one employees phone. Enterprise cloud 
services account for 7196 of services used by the 
average organization, and consumer services 
account for the remaining 29%". 





Counter the risks. Educating employees about 
the dangers of using unapproved apps is a 
necessary starting point, but organizations 
cant stop there. They need to deploy security 
controls — ranging from endpoint security 


software to sophisticated threat analytics — 
and response systems to counter the risks 
posed by malicious apps and their related 
websites. 


Control access. Among the most helpful 
solutions are a new generation of cloud access 
security brokers (CASBs). CASBs sit between 
your employees' devices and cloud service 
providers, serving to give organizations both 
visibility into the apps and cloud services 
employees are using, as well as a means to 
impose security controls on that activity. 


The average cloud services used 
by an organization 


Source: Skyhigh 


CASBs, for example, could be configured to 
allow corporate-owned mobile devices to 
access certain cloud services, but to prevent 
less-secure personally owned devices from 
the same level of access. 


Know the term: 


CASBs 

Cloud Access Security Brokers (CASBs) 
monitor apps and cloud services used 
by employees for enhanced security. 


Look forward. Such externally applied controls 
may gain some inside assistance in coming 
years. Looking forward, future generations of 
applications and apps will likely have some level 
of self-awareness built in to help them act only 
within the parameters of accepted and 
expected usage profiles. In other words, 
applications themselves may soon control 
what types of activities and data access they'll 
allow, rather than passively waiting for an 
attack to materialize and then attempting to 
block it. 
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Botnet activity rises as the loT becomes a target 
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Recruitment of loT devices 
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Connected devices 


A wave of loT devices is sweeping across many 
organizations. The number of loT devices is 
expected to rise from more than 6 billion in 
2016 to more than 20 billion by 2020", including 
more than 12 billion loT connections". Wearable 
devices add another layer of complexity that 
security teams will need to protect as 
employees wear smartwatches, fitness bands, 
and the like to their workplaces. Nearly 215 
million wearable devices are expected to be 
shipped by 2019. Other types of connected 
devices — ranging from factory controllers to 
smart refrigerators — introduce significant 
challenges to protecting the data they 
generate, access, store, and transmit. 


These devices are becoming increasingly 
attractive targets. Over the first half of 2016, we 
tracked a 400% increase in scans of loT ports 
and protocols across the AT&T network — a 
clear sign that loT devices were being recruited. 
A few months later, tens of thousands of loT 
devices were commandeered to launch a series 
of major DDoS attacks on two large internet 
providers. The visibility that AT&T has into 
these types of developing attacks allows us to 
see trends and learn about new attack types. 





10/2015 


Since 2014, AT&T has seen a 
significant increase in botnet 
activity across its global 
network. In a DDoS attack, 
enslaved loT devices — e.g., 
web cameras and DVRs — 
create a botnet that targets 
websites, routers, etc., to 
deny them service. In the six 
months leading to a large- 
scale attack on a prominent 
internet provider, AT&T detected 
a massive recruitment of 
devices that built the attack's 
Mirai botnet. While we can't 
predict what will happen, such 
recruitments provide insight 
into trends and lessons on 
10/2016 future attacks. 


05/2016 


Source: AT&T 





DDoS attacks are just the beginning of a 
broader and more sinister threat enabled by the 
loT. Its easy to imagine nation states marketing 
seemingly legitimate loT devices that contain 
backdoors for breaching networks or 
monitoring their activity. 


/N 400% 


increase in scans involving loT 
devices in the first half of 2016 


Source: AT&T 


Raise the bar. Even though simple loT devices 
may not produce or handle much sensitive 
data, it would be a mistake to assume they 
dont require protection. As the lo T-driven 
botnet attacks illustrate, unsecured loT devices 
can be harnessed to launch DDoS attacks, 
which can then limit access to critical data that 
resides elsewhere. That's why even low-level 
devices should meet minimal requirements, for 
example requiring unique passwords and 
supporting software patches and upgrades. 


Lock down BYODs. Traditional smartphone, 
tablet, and laptop devices raise a different set 
of challenges. Among the most persistent of 
those are the struggles organizations face 


att.com/security 


when they allow employees to use their 
personal devices to perform work tasks and 
access corporate data. As this BYOD trend 
continues to spread, so does the need for more 
corporate control over the use of these dual- 
purpose mobile devices. 





Enterprises increasingly require that BYODs be 
configured with password protection and 
encryption, to mitigate the risks to company 
data stored on personal devices. If employees 
don't agree to these requirements, employers 
can simply block personal devices that lack the 
proper security profiles from accessing 
corporate networks and systems. 


To increase security levels, two-factor 
authentication can be required to access an 
organization's data, such as demanding both a 
typed password combined with a fingerprint 
scan or some other biometric identifier. 


Executives may want to institute greater 
control over access to sensitive data. Through 
granular control, they can limit access based on 
a devices operating system, its geographic 
location, and the security of the network over 
which it's communicating. 


When returning from a business trip to the 
United Kingdom, an executive's mobile device 
automatically connected to the Heathrow 
Airport Wi-Fi, which she had connected to on 

an earlier visit to London. Just one problem: 

The exec was in New York when the device 
connected to the “Heathrow” Wi-Fi. The network 
was a rogue network created specifically to 
trick devices into connecting without the 

users even being aware of the threat”. 
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Rogue Wi-Fi networks at coffee shops, 
restaurants, airports, and other public locales 
are a growing concern. A recent analysis found 
that 75% of Wi-Fi networks were either 
malicious or used to mount a network attack 
at some point during the year". Over a three- 
month period in 2016, nearly one-third of 
executive devices were exposed to a 

network attack”. For executives and 
employees on the move, device exposure can 
happen by joining a public network, a fake 
Wi-Fi, or an improperly configured network. 
That's why access to secure mobility should be 
a best practice followed by all organizations. 


Consider the case of a government contractor 
that mysteriously began losing contract bids it 
previously had won consistently. An 
investigation later found that an employee had 
been sending project proposals via a local 
coffee shop's unsecured Wi-Fi network. An 
outsider was surreptitiously capturing the files 
during transmission and selling them to a rival 
firm, which used the proprietary information 
to undercut the contractor's bid and win 

the projects”. 


Know the term: 
Rogue Wi-Fi hotspot 


An unsecure Wi-Fi network that is often created 
by bad actors to steal or compromise sensitive 
data. These networks are easily avoided by 
using VPNs and end-to-end security. 


Extend the private network. One way to avoid 
the risk of unsecured public Wi-Fi networks is to 
require mobile workers to access corporate 


systems via a virtual private network (VPN). VPNs 


establish highly secure links over public 
networks, enabling mobile workers to safely 


access and transmit corporate data from almost 


anywhere. 


Divide to defend. Ideally, you should segment 
your networks to place highly sensitive data in 
areas protected with the highest level of 





md 
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security and access controls. More broadly, of 
course, you must protect devices, corporate 
data centers, and cloud services. The level of 
security present in each of these variants can 
differ significantly. 


i 
i 


Educate on malicious Wi-Fi. As noted earlier, 
unsecure Wi-Fi networks raise particular 
concern. Organizations generally understand 
how to best protect their perimeter from data 
theft, but they must stay current on emerging 
threats such as unsecure Wi-Fi networks. 


Employee awareness campaigns are central to 
reducing breaches from rogue Wi-Fi sites and 
eavesdropping bad actors. Employees should 
understand the dangers of connecting to 
unknown Wi-Fi networks and the importance 
of logging onto trusted websites only. In 
addition, they should steer clear of sharing 
valuable files or data online or in an email. 


Keep current. Regular maintenance of device 
upgrades should be central to your IT team's 
security practice. All devices — BYODs and 
enterprise-owned — that connect to an 
organization's network should have the latest 
operating systems, security protections, and 
patches. 


Safeguard machine-to-machine 
communications. The rise of loT devices 
brings to the fore another form of networking: 
communications that can range from a robotic 
controller exchanging data with a factory 





automation system to the interaction between 
two cars traveling along a highway. 


Organizations should put in place systems that 
help protect the data being exchanged, verify 
the identity of the communicating devices, 
provide needed management oversight across 
the entire loT environment, and in some cases, 
inspect traffic for legitimacy. 

















To protect data inside their data centers, 
nterprises have built strong defenses with 
firewalls, spam filters, and other perimeter 
protections. Many have gone on to implement 
multifactor authentication and build threat 
analytics and response solutions. Organizations 
also are contracting with outside consultants 
and service providers to develop or deliver 
Cybersecurity capabilities that they don't have 
the skills or resources to provide themselves. 


(D 











Don't compromise on cloud security. As they 
tighten the security of their data centers, 
however, corporate data and applications 
continue their steady migration to services and 
data centers residing in the public cloud. 


Companies are currently uploading an average 
of 185 terabytes of data to cloud applications 
each month, but fewer than 996 of cloud 
providers have implemented enterprise-grade 
data security and privacy controls. That's a 
problem given that nearly 2096 of files stored in 
the cloud contain sensitive data”. 





Organizations should require that their cloud 
service providers deliver at least the same level 
of data protection provided by their own data 
centers. Particularly for smaller organizations 
with less sophisticated security processes, 
third-party cloud services can offer rigorous 
in-house security protections. 


But securing your data in the cloud is just the 
first step. One of the most daunting data 
protection puzzles is integrating corporate 
and cloud-based security models, while also 
working to ensure that data remains highly 
secure as it travels between the two. 





Don't go it alone. There's a growing reliance on 
external cybersecurity expertise to help 
address the complex challenges introduced by 
moving applications and data to the cloud. By 
working with a cybersecurity service provider, 
your organization can improve reaction times 
to attacks and get access to innovative threat 
technologies and cybersecurity expertise. 


Organizations also can tap into the shared 
knowledge and data on existing and emerging 
threats — acting as an early warning system to 
developing threats. Lessons learned by your 
service provider from an attack on one 
organization are used to respond and protect if 
a similar attack is launched on your data. 


Clearly, the challenges of protecting data are as 
multifaceted and complicated as the digital 
landscape itself. Cyberattackers love this 
complexity because it means some security 
holes will be overlooked. To help close such 
vulnerabilities, organizations must take a 
comprehensive and systematic approach to 
protecting data in every data center, device, 
and application in which it resides, and on every 
network that it traverses. 


Protecting your valuable data becomes 

even more important as business innovation 
increases your competitive advantage. Ever- 
eager cybercriminals are ready to exploit any 
new opportunities, including those resulting 
from your gains. To help defend your successes, 
AT&T recommends a strategic mix of innovative 
technologies and proven basic processes. 


Identity & access management: With identity 
and access management systems, people and 
devices accessing your networks can be verified 
and authorization levels set for each. 


e Security teams can manage the people and 
devices that can access data based on a 
number of variables. 


e A new generation of software-defined 
perimeters holds promise to strengthen 
identity access and management by 
restricting remote access to authorized users 
of loT or other devices. 


Threat analytics: Advanced threat analytics 
systems flag behavioral changes in devices, 
services, and users accessing systems or 
applications on the network. 


e Abnormal changes in data traffic patterns act 
as early indicators that a botnet, for example, 
has hijacked devices to launch a DDoS attack. 
Armed with this information, threat analytics 
programs can alert security teams or 
automatically respond to the threat. 


By relying on automated responses to 
evaluate and react to threats, your security 
analysts are freed to concentrate on other 
security demands. 


Virtualized security: An offshoot of network 
virtualization, software-defined security allows 
you to follow and protect your data — onsite as 
well as in private and public clouds. 


e Not only does virtualization save physical 
space, it also helps keep your cyberdefense 
technology current through regular software 
updates. 


e Virtualized security provides the added 
flexibility to scale, depending on how much 
security functionality it needs. 


Incident response: An incident response 
plan includes a detailed and comprehensive 
playbook that spells out the participants, 
processes, and lines of reporting that come 
into play should a serious cyberbreach occur. 
(For more on this topic, read The CEO's Guide 
to Incident Response) 


e Regular testing of an incident response plan 
helps ensure that your team knows their 
responsibilities and confirms that the plan is 
up to date. 


e Standardized procedures enable quick 
reaction times when a breach is detected 
and mitigate damages from the attack. 


The ongoing digitization of your organization 
creates many opportunities for innovation — 
and new openings for cyberattack. To sustain 
the competitive advantage resulting from your 
innovations, you must be able to protect your 
valuable data. Cybersecurity's evolution will 
help you in working to protect the data that 

is critical to the success and growth of 

your business. 
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Additional reading 









‘The CEO's Guide to 
Cyberbreach Respon: 


Cybersecurity Insights, vol. 1: What Every CEO Needs 
to Know About Cybersecurity 
www.business.att.com/cybersecurity/archives/v1 


Cybersecurity Insights, vol. 2: The CEO’s Guide to 
Securing the Internet of Things 
www.business.att.com/cybersecurity/archives/v2 


Cybersecurity Insights, vol. 3: The CEO’s Guide to 
Cyberbreach Response 
www.business.att.com/cybersecurity/archives/v3 


Cybersecurity Insights, vol. 4: The CEO’s Guide to 
Navigating the Threat Landscape 
www.business.att.com/cybersecurity/archives/v4 


Executive Abstracts 
www.business.att.com/cybersecurity/abstracts 


Know the Terms glossary 
www.business.att.com/cybersecurity/terms 


Network Security Solutions 
www.business.att.com/enterprise/Portfolio/ 
network-security 


More resources available at 
securityresourcecenter.att.com 
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